mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git
parent: 212a37f6 | patch | commit | ignore whitespace
Gaetan Boismal
06.51.2016 d41b230a03c4506e21eddeba75cc0f0840d75817 
OPENDJ-3068 Make RFC7662 OAuth2 resolver work with OpenAM OOTB
2 files modified
4 ■■■■ changed files
opendj-rest2ldap-servlet/src/main/webapp/WEB-INF/classes/opendj-rest2ldap-config.json 2 ●●● patch | view | raw | blame | history
opendj-server-legacy/resource/config/config.ldif 2 ●●● patch | view | raw | blame | history 
 opendj-rest2ldap-servlet/src/main/webapp/WEB-INF/classes/opendj-rest2ldap-config.json


@@ -200,7 +200,7 @@


            "rfc7662": {


                // Defines the token introspection endpoint URL where the request should be sent.


                // This attribute is required and must have a string syntax.


                "endpointURL": "http:/example.com/introspect",


                "endpointURL": "http://openam.example.com:8080/openam/oauth2/myrealm/introspect",




                // Token introspect endpoint requires authentication.


                // It should support HTTP basic authorization (a base64-encoded string of clientId:clientSecret)




 opendj-server-legacy/resource/config/config.ldif


@@ -456,7 +456,7 @@


cn: HTTP OAuth2 Token Introspection (RFC7662)


ds-cfg-java-class: org.opends.server.protocols.http.authz.HttpOAuth2TokenIntrospectionAuthorizationMechanism


ds-cfg-enabled: false


ds-cfg-oauth2-token-introspection-url: http://openam.example.com:8080/oauth2/myrealm/introspect


ds-cfg-oauth2-token-introspection-url: http://openam.example.com:8080/openam/oauth2/myrealm/introspect


ds-cfg-oauth2-token-introspection-client-id: directoryserver 


ds-cfg-oauth2-token-introspection-client-secret: secret


ds-cfg-oauth2-authzid-json-pointer: sub